Data Processing Agreement (DPA)

pursuant to Art. 28 GDPR

This Data Processing Agreement is concluded between the Client (Data Controller) and aikeep.io operator (Data Processor) and constitutes an annex to the Service Agreement.

§1. Subject Matter

The Controller entrusts the Processor with processing personal data to the extent necessary for providing the aikeep.io AI cluster service, in particular data contained in documents submitted for analysis.

§2. Processor Obligations

• Processes data only on documented instructions from the Controller.
• Ensures authorised persons are bound by confidentiality.
• Implements appropriate technical and organisational security measures (Art. 32 GDPR).
• Does not transfer data to third countries outside the EEA.
• Promptly notifies the Controller of any personal data breach.
• Upon termination, deletes or returns all data and deletes existing copies.

§3. Security

Data is processed exclusively on physical locally hosted servers, EU. The infrastructure operates in an isolated local environment (Local Sandbox), without connection to external AI services.

§4. Final Provisions

This Agreement is valid for the duration of the Service Agreement. Governing law: Polish law.

To sign an individual DPA, contact us: [email protected]